Hacker News new | past | comments | ask | show | jobs | submit login

I was looking at the login links at the top… it's interesting eh.

- Persona is dead.

- Twitter has been rebranded and its future is uncertain.

- Reddit took them down

Github and Google are both reliable oauth providers. Though the github oauth is linked to a personal account, not an org, which is all kinds of awful for reliability of the app.

Since I use 1Password, I've started to always retain backup login+PW methods for every website I use oauth for anyway. And if I do use oauth, it's ALWAYS gonna be using Google (which is reliable and I pay for) or nothing except for very specific scenarios where oauth perms are relevant. I think the federated auth dream is just entirely dead at this point.




Why is persona dead? I've never used them, their site appears to be online (still), though.

> I think the federated auth dream is just entirely dead at this point.

That you had to support individual auth providers, none of which were reliable, was a major issue. Had they been "oh here's my auth provider" and you stuck it into a site, that would have been grand. No need to have a bunch of "login with" providers up top.

That sort-of worked with OAuth 1.0, IIRC that protocol had issues which is why we had OAuth 2.0 which sorta worked (and I've never seen an easy impl, where you just "stand up" an oauth server and then clients easily use it). Back when you could use the likes of Yahoo to OAuth you around.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: